Re: Cannot join vCenter server to AD domain

VEspin · ‎12-29-2018

When clicking the join button I receive the above message. I receive the same error message from the HTML5 and Flex clients. I don't know if it has anything to do with it but this vCenter server was linked to another vCenter server's SSO domain. That server is domain joined. I've not had any success finding information about this error. Anyone have any thoughts?

Thanks

VEspin · ‎01-02-2019

I realized I should have provided more information. This is vCenter 6.7. I just updated to 6.7.0.20100 to see if it resolved the problem but it did not. The error message changed though:

Same in FLEX:

I'm not even sure where to begin looking into this so any suggestions would be appreciated.

VEspin · ‎01-02-2019

I decided to try to join using the CLI and it worked. I rebooted the server. When I log into the web interface and go to Administration > Configuration > Active Directory Domain it says "The node didn't join any Active Directory." but when I query in the CLI it shows that it is joined to the domain. I'm also able to login with my domain credentials and I was not able to before the CLI domain join.

NelsonCandela · ‎01-04-2019

Do you use an internal or external PSC?

VEspin · ‎01-04-2019

Internal. We're using vCenter Server with an embedded Platform Services Controller.

a_p_ · ‎01-04-2019

... Administration > Configuration > Active Directory Domain it says "The node didn't join any Active Directory."

I saw this too in a customer environment. However, IIRC it's only in the HTML5 client, the Flash client displayed the status correctly.

Please check the setting in the Flash client.

André

VEspin · ‎01-04-2019

The FLEX client also shows it blank, but a CLI query gives an output like below:

root@vcenter [ ~ ]# /opt/likewise/bin/domainjoin-cli query

Name = vcenter

Domain = domain.ext

Distinguished Name = CN=VCENTER,CN=Computers,DC=domain,DC=ext

VEspin · ‎01-22-2019

Bumping this in the hopes anyone else has any ideas.

GayathriS · ‎01-23-2019

So you are trying to change the domain to which VC belongs to from old to new Domain?

or adding multiple domains ?

regards

Gayathri

GayathriS · ‎01-23-2019

Is there anything to do with compatibility:

VMware Knowledge Base

regards

Gayathri

VEspin · ‎01-23-2019

No compatibility issue, domain functional level is 2008 R2.

VEspin · ‎01-23-2019

I'm not trying to change domain. I was able to join the domain from CLI, and when I use the CLI to query domain join status it shows that is the case. I'm also able to login with domain credentials where I was not able to before. The only problem I have now is that neither the HTML5 or FLEX clients show that the vCenter server is joined to a domain at all even though it shows that it is in CLI and is otherwise acting as though it is. Seems to be a bug.

NelsonCandela · ‎01-25-2019

Hi VEspin,

after you joined the VCSA via CLI, have you tried to dissolve the connection again over CLI and re-try connecting using the GUI within the VCSA? I'm curious if, once the Domain Join has been done successfully before, if a second try would also be fruitful ...

Maybe you're right and it's a bug; yet after checking the big G-search engine I have not been able to identify this problem being documented elsewhere.

BR

NC

All

Cannot join vCenter server to AD domain